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DETAILED ACTION 

• Applicant's amendment filed on March 4, 2008 has been entered. Applicant has 
amended claims 1, 27 and 28. Currently claims 1-28 are pending in this 
application. 



Response to Arguments 

1 . Applicant's arguments filed April 8, 2008 have been fully considered but they are 

not persuasive for following reasons: 

Rejection under 35 U.S.C. 101: 

• Regarding U.S.C. 101 of claims 1-13, applicant argues that, "The modules 
recited in claims 1-13 are not forms of energy, computer-readable media 
encoded with a computer program, or signals. Paragraphs [001 1]-[0020], 
[0036]-[0045], and [0093] of the specification disclose and support the 
document security systems as claimed in claims 1-13. Claims 1- 13 recite 
document security systems that restrict access to secured documents, and 
thus provide a "useful, concrete, and tangible result" as required by 35 U.S.C. 
§101." 

> In reply, examiner would like to point out that examiner is not claiming that 
specification does not provide a "useful, concrete and tangible result". 
Examiner is rejecting claims for not providing useful, concrete and tangible 
result because claims are not listing any hardware part of the system, i.e. 
claims only recite the software parts and when the system claim list only the 
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software part, it would not be able to produce any "useful, concrete and 
tangible result", in absence of corresponding hardware. 

• Applicant further argues that, "However, to expedite prosecution, Applicants 
have amended claim 1 herein to recite a document security system 
comprising two modules, a policy module that stores at least one process- 
driven security policy on a computer readable medium, and an access 
manager module that accesses and applies the stored security policy." 

> In reply, examiner would like to point out that even amended claims fail to 
overcome U.S.C 101 rejection because amended claim 1 is still claiming the 
system consisting of two modules, a policy module and an access manager 
module which are software parts of the system. A recitation of "a policy 
module that stores at least one process-driven policy on a computer readable 
medium" is not enough to overcome U.S.C. 101 rejection of claim 1 because 
the computer readable medium is not claimed as a part of the system but only 
claimed as a hardware to which a system component (policy module) has 
access to store process-driven security policy. Therefore, the system claims 
even in its amended form only list the software modules of the system and 
therefore rejected under U.S.C. 101. 
Rejection Under 35 U.S.C. 102(e): 

• Regarding Claim 1 , applicant argues that, "Leser does not teach or suggest 
that the security alert states are part of a process-driven security policy that 
includes a plurality of states and transition rules, wherein the transition rules 
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specify circumstances under which a secured document is to transition from 
one state to another, as recited in claim 1 ." 

> In reply, examiner would like to point out that Laser discloses process-driven 
security policy that includes plurality of states (see, Fig. 1 , "policy for initial 
research document", "Policy for Team Review documents", Policy for 
published documents" and also see, Paragraph 0123, all these policies work 
under two states that are Normal and lock-down) and transition rules (see 
Paragraph 0051 , "events that cause the automatic transfer of data objects 
between control policies", examiner is equating "events" to the transition rules 
of claim 1 ) wherein the transition rules specify circumstances under which a 
secured document is to transition from one state to another (see Paragraph 
0051 , "events that cause the automatic transfer of data objects between 
control policies"). 

• Applicant further argues, "Further, Applicants are unable to identify in Leser 
any disclosure of an access manager module that determines whether access 
to a secured document is permitted by a requestor based on the document 
state and the corresponding access restrictions, as recited in claim 1 ." 

> In reply, examiner would like to point out that Laser discloses an access 
manager module that determines whether access to a secured document is 
permitted by a requestor based on the document state and the corresponding 
access restrictions (see, Paragraph 0035, policy server determines whether 
access to a secured document is permitted by a requestor based on the 
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corresponding access restriction and see Paragraph 0123, access to 
documents is based on the normal or lock-down states). 

• Regarding Claim 14 and 27, applicant argues that, "Leser does not teach or 
suggest transitioning secured documents from a former state to a subsequent 
state, as recited in claims 14 and 27. Leser lacks any teaching of transitioning 
a secured document through a security policy state machine, as recited in 
claims 14 and 27." 

> In reply, examiner would like to point out that Laser discloses transitioning 
secured documents from a former state to a subsequent state (see, 
paragraph 0122 and 0123, changing of state from normal to lock-down and 
vice versa) and further discloses transitioning a secured document through a 
security policy state machine (see paragraph 0122 and 0123, when the states 
are change, they are changes for all documents on the server, i.e. when the 
system is in normal state, default security policy is applied to the documents 
but when system change the state to lock-down security policy changes and 
therefore, examiner is interpreting this change in security polices for 
document as transitioning a secured document through a security policy state 
machine). 

• Moreover, Leser does not disclose automatically transitioning a secured 
document's state from a former state to a subsequent state in a security- 
policy state machine when an event causes a state transition, as recited in 
claims 14 and 27. 
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> In reply, examiner would like to point that Laser clearly discloses 
automatically transitioning a secured document's state from a former state to 
a subsequent state in a security-policy state machine when an event causes 
a state transition (see, Paragraph 0051 , "events that cause the automatic 
transfer of data objects between control policies"). 

• Regarding Claims 21 and 28, applicant argues that, "Leser's control policies 
are not process-driven and are not used to determine at a server computer 
whether a requestor is permitted to access an electronic document, the 
access being based on a current state of the process-driven security policy, 
the current state being informed to the server computer by sending the 
reference to the server computer, as recited in claims 21 and 28." 

> In reply, examiner would like to point that Laser clearly discloses, process- 
driven control policies (see, Paragraph 0051, events causes the change is 
control policies therefore examiner is interpreting control policies that changes 
because of the events to the process-driven control policies of claims 21 and 
28). Laser further discloses that these control policies are used to determine 
at a server computer whether a requestor is permitted to access an electronic 
document (see Paragraph 0035, policy server determines whether access to 
a secured document is permitted by a requestor based on the corresponding 
access restriction and see Paragraph 0123, access to documents is based on 
the normal or lock-down states) and further discloses the access being based 
on a current state of the process-driven security policy, the current state being 
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informed to the server computer by sending the reference to the server 
computer (see, Paragraph 0029, "Changes to a control policy would be 
enacted on the server storing that control policy" and Paragraph 0097, "The 
invention and its preferred embodiments guarantee that changes to the 
control policy will be propagated to end users and ultimately experienced by 
those users when they next access the data objects protected by that 
changed policy."). 
Rejection under 35 U.S.C 103(a) rejection: 

• Regarding Claim 7, applicant argues that, "While Leser may disclose that 
persons of skill in the art may be able to extend the two-setting security knob 
into more than two settings, Leser's security knob is limited to changing the 
state of a business policy and creating log events (Leser, paragraphs [0121 - 
0125]). As discussed above, Leser's business policy states are not analogous 
to the plurality of states for the state-drive security policy recited in claim 7." 

> Applicant's argument that Leser's business policy states are not analogous to 
the plurality of states for the state-drive security policy is not found persuasive 
because Laser clearly discloses, process-driven control policies (see, 
Paragraph 0051 , events causes the change is control policies therefore 
examiner is interpreting control policies that changes because of the events to 
the process-driven control policies of claims 21 and 28) that has plurality of 
states for the state-drive security policy (Paragraph 0123, all these policies 
work under two states that are Normal and lock-down). 
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Claim Rejections - 35 USC § 101 
2. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of 
matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

The USPTO "Interim Guidelines for Examination of Patent Applications for Patent 
Subject Matter Eligibility" (Official Gazette notice of 22 November 2005), Annex IV, 
reads as follows: 

In contrast, a claimed computer-readable medium encoded with a computer program is a computer 
element which defines structural and functional interrelationships between the computer program and 
the rest of the computer which permit the computer program's functionality to be realized, and is thus 
statutory. See Lowry, 32 F.3d at 1583-84, 32 USPQ2d at 1035. 

Claims that recite nothing but the physical characteristics of a form of energy, such as a frequency, 
voltage, or the strength of a magnetic field, define energy or magnetism, per se, and as such are 
nonstatutory natural phenomena. O'Reilly, 56 U.S. (15 How.) at 112-14. Moreover, it does not appear 
that a claim reciting a signal encoded with functional descriptive material falls within any of the 
categories of patentable subject matter set forth in Sec. 101 . 

... a signal does not fall within one of the four statutory classes of Sec. 101. 

. . . signal claims are ineligible for patent protection because they do not fall within any of the four 
statutory classes of Sec. 101 . 



Claims 1-13 are rejected under 35 U.S.C. 101 because the claimed invention is 
directed to non-statutory subject matter as follows. Although Claims 1-13 are directed 
towards system of providing document security system, the specification provides 
intrinsic evidence that these claims are directed towards software alone. System as 
claimed in 1-13 is nothing more then software modules, which are capable of 
performing different tasks of the claimed system. 

Claims 1-13 defines a system and method embodying functional descriptive 
material. However, the claims do not define a computer-readable medium or memory 
and is thus non-statutory for that reason (i.e., "When functional descriptive material is 
recorded on some computer-readable medium it becomes structurally and functionally 
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interrelated to the medium and will be statutory in most cases since use of technology 
permits the function of the descriptive material to be realized" - Guidelines Annex IV). 
That is, the scope of the presently claimed system and method can range from paper on 
which the program is written, to a program simply contemplated and memorized by a 
person. The examiner suggests amending the claim to embody the program on 
"computer-readable storage medium" or equivalent in order to make the claim statutory. 
Any amendment to the claim should be commensurate with its corresponding 
disclosure. Also note that 35 U.S.C 101 requires that claimed invention, as a whole 
must produce a "useful, concrete and tangible result." State Street, 149 F.3d at 1373, 
47 USPQ2d at 1601-02. When the system claim list only the software part, it would not 
be able to produce any "useful, concrete and tangible result", in absence of 
corresponding hardware, as required by 35 U.S.C 101. 

Examiner further would like to point out that just adding "computer-readable 
medium" will not be sufficient to make these claims statutory because the specification, 
at page 24 defines the computer readable medium as encompassing statutory media 
such as a "read-only memory", "random-access memory", "DC-ROMs", "DVDs", 
"magnetic tape", ""optical data storage devices", etc as well as non-statutory subject 
mater such as a "carrier waves" (which is a form of signal). 

Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 
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A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed 
publication in this or a foreign country, before the invention thereof by the applicant for a patent. 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351 (a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

Claims 1, 2, 3, 4, 5, 6, 8, 9, 11. 12, 13. 14, 15. 16. 17, 18. 19. 20, 21, 22, 23. 24, 
25, 26, 27, 28 are rejected under 35 U.S.C. 102(e) as being anticipated by Leser et al. 
(US 2005/0028006 A1 , filed as an IDS reference), hereinafter Leser. 

Regarding Claim 1, Leser discloses a document security system for restricting 
access to secured documents (See Fig. 1-5) comprising: 

a policy module configured to store at least one process-driven security policy on 
a computer readable medium, wherein the policy includes a plurality of states (see, Fig. 
1 , "policy for initial research document", "Policy for Team Review documents", Policy for 
published documents" and also see, Paragraph 0123, all these policies work under two 
states that are Normal and lock-down) and transition rules (see Paragraph 0051, 
"events that cause the automatic transfer of data objects between control policies", 
examiner is equating "events" to the transition rules of claim 1), wherein each of the 
states is associated with one or more access restrictions (Fig. 1-5, and paragraphs 
0096 - 0123) and wherein the transition rules specify circumstances under which a 
secured document is to transition from one state to another (see paragraphs 0123, 
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0125, two states are defined as a normal and lock-down and also see Paragraph 0051 , 
"events that cause the automatic transfer of data objects between control policies"). 

an access manager module configured to access the process-driven security 
policy and determine (Paragraph 0035, "Policy Server") whether access to a secured 
document is permitted by a requestor based on the policy state associated therewith at 
the time access is requested and the corresponding one or more access restrictions 
thereof for the process-driven security policy (see, Paragraph 0035, policy server 
determines whether access to a secured document is permitted by a requestor based 
on the corresponding access restriction and see Paragraph 0123, access to documents 
is based on the normal or lock-down states). 

Regarding Claim 2, the rejection of claim 1 is incorporated and Leser further 
discloses that the one or more access restrictions for the secured document are 
automatically changed when the state of the process-driven security policy for the 
secured document changes (see paragraphs 0123 and 0125) 

Regarding Claim 3, the rejection of claim 1 is incorporated and Leser further 
discloses that events cause the state of the process-driven security policy for the 
secured document to automatically transition from one state to another (See paragraph 
0123 and 0125, "when the business process is "under attack" or otherwise vulnerable" 
is an event that causes switching of normal state to a "lock-down" state) 

Regarding Claim 4, the rejection of claim 3 is incorporated and Leser further 
discloses that the events are internal or external events with respect to the document 
security system (See paragraph 0123 and 0125) 
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Regarding Claim 5, the rejection of claim 4 is incorporated and Leser further 
discloses that at least one of the events is an external event from a document 
management system (see paragraph 0123, "vulnerable to potential violations of a 
governmental regulation during some critical time period") 

Regarding Claim 6, the rejection of claim 1 is incorporated and Leser further 
discloses that one or more of the corresponding one or more access restrictions for 
access to the secured document remain intact when the state of the process-driven 
security policy for the secured document changes (see paragraph 0123) 

Regarding Claim 8, the rejection of claim 1 is incorporated and Leser further 
discloses that events cause the state of the process-driven security policy to 
automatically transition from one state to another (see paragraphs 0123 and 0125). 

wherein the process-driven security policy includes at least a first state and a 
second state (see paragraph 0123, "normal" and "lock-down"), and wherein a first event 
causes transition from the first state to the second state (see paragraph 0123, ""under 
attack or otherwise vulnerable"). 

Regarding Claim 9, the rejection of claim 1 is incorporated and Leser further 
discloses that transition rules are based on events (see Paragraph 0123). 

Regarding Claim 11, the rejection of claim 1 is incorporated and Leser further 
discloses that events cause the state of the process-driven security policy for the 
secured document to transition from a previous state to a current state (See Paragraph 
0123), and wherein the secured document is modified when the process-driven security 



Application/Control Number: 10/676,474 Page 13 

Art Unit: 2135 

policy for the secured document transitions from the previous state to the current state 
(see paragraphs 0057, 0113, 140, 0141 and 0185). 

Regarding Claim 12, the rejection of claim 11 is incorporated and Leser further 
discloses that the secured document includes at least a security information portion and 
an encrypted data portion (paragraph 0007, "To be effective, a rights management 
system must tightly couple the usage rights to the encrypted data objects so that the 
usage rights always appear with the associated object.") , the security information 
portion including at least an encrypted key, and the key being encrypted must be 
decrypted in order to decrypt the encrypted data portion (Paragraph 0006, "In particular, 
authorized users are given access to the secret key needed to decrypt the protected 
object and produce the actual data object."), and wherein when the process-driven 
security policy for the secured document transitions from the previous state to the 
current state, the secured document is modified by decrypting the encrypted key and 
then re-encrypting the key, whereby the key is encrypted differently for the current state 
than the previous state (see paragraphs 0185 and 187, describing the process of re- 
encrypting the content encryption key (CEK) with a new Key encryption key (KEK), once 
the current KEK expires or need to be changed to a new KEK for any propose). 

Regarding Claim 13, the rejection of claim 11 is incorporated and Leser further 
discloses when permitted, access to the secured document is available at a client 
machine (see paragraph 0016, "A rights-management-aware application on the end- 
user's machine uses the server's response to provide the end user with the owner- 
designated level of access to the protected segment."). 
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Regarding Claims 14 and 27, Leser discloses a method and a corresponding 
software program for transitioning at least one secured document through a security- 
policy state machine having a plurality of states, the method comprising: 

(a) receiving an event (See paragraph 0123, "under attack") 

(b) determining whether the event causes a state transition for the at least one 
secured document from a former state to a subsequent state of the security-policy state 
machine; (See paragraphs 0122 and 0123, describing the method of changing normal 
to lock-down state also note that when the states are change, they are changes for all 
documents on the server, i.e. when the system is in normal state, default security policy 
is applied to the documents but when system change the state to lock-down security 
policy changes and therefore, examiner is interpreting this change in security polices for 
document as transitioning a secured document through a security policy state machine) 

(c) automatically transitioning from the former state to the subsequent state of the 
security-policy state machine when determining step (b) determines that the event 
causes the state transition (See paragraph 0122 and 0123, "The security officers and 
business process owners have together also defined a set of changes to this business 
process that should go into effect whenever the business process is "under attack" or 
otherwise vulnerable (e.g., vulnerable to an identified and determined adversary, or 
vulnerable to potential violations of a governmental regulation during some critical time 
period). When applied to the appropriate pieces of the business process, these set of 
changes comprise the "lock-down" security state.", and also see, Paragraph 0051 , 
"events that cause the automatic transfer of data objects between control policies") 
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Regarding Claim 15, the rejection of claim 14 is incorporated and Leser further 
discloses the security-policy state machine implements a process-driven security policy, 
and wherein each state of the security-policy state machine has different access 
restrictions (see Paragraph 0122, 123, Normal state allow normal processing and lock- 
down state lock all the access). 

Regarding Claim 16, the rejection of claim 14 is incorporated and Leser further 
discloses each of the states of the security-policy state machine have different access 
policies (see paragraph 0122, 0123, Normal state allow normal processing and lock- 
down state lock all the access). 

Regarding Claim 17, the rejection of claim 16 is incorporated and Leser further 
discloses the security-policy state machine is provided as part of a document security 
system, and wherein the different access policies of the security-policy state machine 
are enforced by the document security system (See, Paragraphs 0122, 0123, 0124) 

Regarding Claim 18, the rejection of claim 14 is incorporated and Leser further 
discloses wherein the transitioning step (c) comprises modifying the secured document 
to reflect the subsequent state of the security-policy state machine (see paragraph 
0185, describing the process of re-encrypting the content encryption key (CEK) with a 
new Key encryption key (KEK), once the current KEK expires or need to be changed to 
a new KEK for any propose). 

Regarding Claim 19, the rejection of claim 14 is incorporated and Leser further 
discloses the transitioning step (c) further comprising: 
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(c1) retrieving an encrypted file key from the secured document (Paragraph 
0187, "the server 29 in step 103 decrypts the CEK using either the indicated control 
policy KEK or the master KEK"). 

(c2) decrypting, when permitted by the former state of the security-policy state 
machine, the encrypted file key to yield a file key (Paragraph 0187, "the server 29 in 
step 103 decrypts the CEK using either the indicated control policy KEK or the master 
KEK"). 

(c3) subsequently encrypting the file key in accordance with the subsequent state 
of the security-policy state machine (Paragraph 0187, "and re-encrypts the CEK with the 
current control policy KEK and master KEK"); and 

(c4) storing the secured document, the secure document including at least an 
encrypted data portion and the subsequently encrypted file key (Paragraph 0187). 

Regarding Claim 20, the rejection of claim 14 is incorporated and Leser further 
discloses that the transitioning step (c) further comprising: 

(c1) retrieving an encrypted file key from the secured document; obtaining a 
private state key associated with the former state of the security- policy state machine 
(Paragraph 01 87, "the server 29 in step 1 03 decrypts the CEK using either the indicated 
control policy KEK or the master KEK"); 

(c2) decrypting the encrypted file key using the private file key; obtaining a public 
state key associated with the subsequent state of the security- policy state machine 
(Paragraph 0187, "the server 29 in step 103 decrypts the CEK using either the indicated 
control policy KEK or the master KEK"); 
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(c3) subsequently encrypting the file key in accordance with the public state key 
(Paragraph 0187, "and re-encrypts the CEK with the current control policy KEK and 
master KEK"); and 

(c4) storing the secured document, the secured document including at least an 
encrypted data portion and the subsequently encrypted file key (Paragraph 0187). 

Regarding Claims 21 and 28, Leser discloses a method and corresponding 
computer program for imposing access restrictions on electronic documents, the 
method comprising: 

a) providing at least one process-driven security policy at a server computer, 
wherein the process-driven security policy is associated with a plurality of states and 
wherein each of the states has distinct access restriction (see paragraphs 0029, 0030 
and 0096); 

b) providing a reference to the process-driven security policy to client computer, 
the reference referring to the process-driven security policy resident on the server 
computer (paragraph 0039,0040 and 0073, describing the process of caching the 
security policies at a client computer and using then off-line). 

c) associating the reference to an electronic document (Paragraph 0208, "While 
off-line, user A in step 144 creates a sensitive data object D (in the example, a 
document) and protects it with control policy P. This action takes place while user A is 
disconnected from the policy server 29. Since control policy P is cached on user A's 
laptop, he or she is able to create and protect document D.") 
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d) transitioning the process-driven security policy from one state to a current 
state (see paragraph 0029, "Changes to a control policy would be enacted on the server 
storing that control policy"); and 

e) subsequently determining at the server computer whether a requestor is 
permitted to access the electronic document, the access being based on a current state 
of the process-driven security policy, the current state being informed to the server 
computer by sending the reference to the server computer (see, Paragraph 0029, 
"Changes to a control policy would be enacted on the server storing that control policy" 
and Paragraph 0097, "The invention and its preferred embodiments guarantee that 
changes to the control policy will be propagated to end users and ultimately 
experienced by those users when they next access the data objects protected by that 
changed policy."). 

Regarding Claim 22, the rejection of claim 21 is incorporated and Leser further 
discloses wherein the transitioning step (d) is automatically performed based on events 
(Paragraph 0030). 

Regarding Claim 23, the rejection of claim 22 is incorporated and Leser further 
discloses wherein the transitioning step (d) is performed at the server computer (see 
paragraph 0029, "Changes to a control policy would be enacted on the server storing 
that control policy"). 

Regarding Claim 24, the rejection of claim 21 is incorporated and Leser further 
discloses wherein the associating step (c) associates the reference to a group of 
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documents (See paragraph 0097, "For example, assume that we are given a set of data 
objects, all of which are protected by a single control policy"). 

Regarding Claim 25, the rejection of claim 21 is incorporated and Leser further 
discloses wherein the method pertains to a group of electronic documents, and wherein 
all of the electronic documents of the group are always in the same state of the process- 
driven security policy (See paragraph 0097, "For example, assume that we are given a 
set of data objects, all of which are protected by a single control policy"). 

Regarding Claim 26, the rejection of claim 21 is incorporated and Leser further 
discloses evaluating the process-driven security policy of an electronic document at the 
server computer based on at least the security policy restrictions for the current state of 
the process-driven security policy for the electronic document (see Paragraphs 0097 
and 0035). 

Claim Rejections - 35 USC § 103 

1 . The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claim 7 is rejected under 35 U.S.C. 103(a) as being unpatentable over Leser. 

Regarding Claim 7, the rejection of claim 1 is incorporated and Leser further 
discloses that events cause the state of the process-driven security policy to 
automatically transition from one state to another (see paragraphs 0123 and 0125). 
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wherein the process-driven security policy includes at least a first state and a 
second state (see paragraph 0123, "normal" and "lock-down"), and wherein a first event 
causes transition from the first state to the second state (see paragraph 0123, ""under 
attack or otherwise vulnerable"). However, Leser does not explicitly disclose a third 
state and second event that causes transition from the second state to a third state. 

However Leser at paragraph 0127 recites, "Those of ordinary skill in the art 
should recognize the methods of extending this two-setting security knob example and 
implementation to one that implements an n-setting security knob, for any specific n 
greater then 2." 

Therefore, it would have been obvious at the time the invention was made to one 
of ordinary skill in the art to have a third alert state along with "normal and lock-down 
state", for example, a "moderate state", in which instead of going from lock-down to 
normal state directly, system would transit to moderate state before going to normal, in 
which all the people with permission to access would only be able to read the secured 
document and then when system would transit from moderate to normal, normal 
processing would be restored. The person of ordinary skill in the art would be motivated 
to do so because having more state provides more variations depending on the 
requirements of the security. 



Claim 10 is rejected under 35 U.S.C. 103(a) as being unpatentable over Leser in 



view of Li et al. (US 2004/01 9391 2 A1 ). hereinafter Li. 
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Regarding Claim 10, the rejection of claim 9 is incorporated and Leser does not 
teach that the transition rules are written in XML. 

However, Smith et al. in the same field of endeavor of network security discloses 
writing security policies in XML format (Paragraph 0014, "In one embodiment of the 
present invention, the security policies are stored in a relational database in a native 
Extensible Markup Language (XML) format") 

Therefor, it would have been obvious at the time the invention was made to one 
of ordinary skill in the art to write the transition rules of (i.e. switching security knob 
rules) in XML format as taught by Li because XML is a text-based and platform 
independent, as a result policy server would be able to enforce and distribute the 
policies to all client having any type of operating system platform. 

Conclusion 

2. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
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the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to YOGESH PALIWAL whose telephone number is 
(571)270-1807. The examiner can normally be reached on M-F: 7:30 AM - 5:00 PM 
EST. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on (571 ) 272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



/Y. P.I 

Examiner, Art Unit 2135 
/KimYen Vu/ 



Supervisory Patent Examiner, Art Unit 2135 



